AIX

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-1999-0130, IBM PSIRT advisory page CVE: CVE-1999-0130 NVD summary: Local users can start Sendmail in daemon mode and gain root privileges. References: www.securityfocus.com/bid/716   www.securityfocus.com/bid/716 Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2023-27868, IBM Support Bulletin CVE: CVE-2023-27868 NVD summary: IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-1999-1119, IBM PSIRT advisory page CVE: CVE-1999-1119 NVD summary: FTP installation script anon.ftp in AIX insecurely configures anonymous FTP, which allows remote attackers to execute arbitrary commands. References: www.cert.org/advisories/CA-1992-09.html   www.securityfocus.com/bid/41   […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2023-24964, IBM Support Bulletin CVE: CVE-2023-24964 NVD summary: IBM InfoSphere Information Server 11.7 could allow a local user to obtain sensitive information from a log files. IBM X-Force ID: 246463. References: exchange.xforce.ibmcloud.com/vulnerabilities/246 […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 Affected: 7.2, 7.3 📖 ~4 min read  •  Source: NVD CVE-2025-36250, IBM Support Bulletin CVE: CVE-2025-36250 NVD summary: IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2025-2140, IBM Support Bulletin CVE: CVE-2025-2140 NVD summary: IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email identity of the […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2025-36038, IBM Support Bulletin CVE: CVE-2025-36038 NVD summary: IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially crafted sequence […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2025-27907, IBM Support Bulletin CVE: CVE-2025-27907 NVD summary: IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests […]

🟡 Medium   ⏱ 15–45 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.3 📖 ~4 min read  •  Source: NVD CVE-2024-49808, IBM Support Bulletin CVE: CVE-2024-49808 NVD summary: IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 could allow an authenticated user to spoof the identity of another user due to improper […]

🟠 High   ⏱ 30–90 min  Last verified: 25 May 2026 Affected versions: IBM AIX 7.1 📖 ~4 min read  •  Source: NVD CVE-1999-0903, IBM PSIRT advisory page CVE: CVE-1999-0903 NVD summary: genfilt in the AIX Packet Filtering Module does not properly filter traffic to destination ports greater than 32767. References: exchange.xforce.ibmcloud.com/vulnerabilities/CVE   exchange.xforce.ibmcloud.com/vulnerabilities/CVE Table […]